Windows Secrets
Signed in: chuck1@chuckstr89134.com  |  Upgrade  |  Sign Out
Skip to content
  • Home
  • Newsletter Archives
    • Current
    • LangaList Plus
    • Patch Watch
    • Wacky Web Week
    • Security Baseline
  • WinDeals
  • E-Books
  • Lounge
  • Polls
  • About us
    • Refunds
    • Privacy Policy
    • Advertise
  • Contact
  • Your Account
    • Upgrade
    • Preferences
    • Bonus Download
    • Unsubscribe
Home>Perimeter Scan>Browser forensic tools find malware entry points

Browser forensic tools find malware entry points

Posted on January 21, 2010 by Ryan Russell in Perimeter Scan
Tweet

Ryan Russell 1 Browser forensic tools find malware entry points By Ryan Russell

Malware removal is only the first step in fighting an infection.

Your job isn’t finished until you’ve determined what the malware is, how it breached your defenses, and how to prevent similar infections in the future.

Your browser history tells the malware tale

My past malware-related columns focused on removing an infection. This is usually the immediate goal when working to fix your home PC. But it’s not the only goal.

For example: In a corporate setting, a good IT department will not only remove an infection but also do a forensic analysis to determine how the malware got in, what damage it did, and how to prevent recurrences.

There’s no reason why you can’t do the same on your own PC.

In my experience, when malware infiltrates a PC, it usually comes in through the machine’s browser. Fortunately, browsers maintain extensive logs of your Web activity, and some of these can be the key to a successful forensic investigation of just how the malware got in.

This article is part of our paid content. Upgrade your account to see the rest of this article!

Related posts:

  1. A PC that cannot become infected with malware
  2. The best strategy for dealing with malware
  3. What Info Is Your Browser Broadcasting?
  4. Multiple tools required to disinfect a PC
  5. Good malware prevention and removal site
= Paid content

All Windows Secrets articles posted on 2010-01-21:

  • Top Story Patch arrives for IE hole targeted by Chinese
  • Wacky Web Week This vending machine gives and gives and gives
  • LangaList Plus Extend the life of your laptop’s battery
  • Insider Tricks Five productivity-enhancing Registry tweaks
  • Perimeter Scan Browser forensic tools find malware entry points
  •  Show all articles on a single page
Ryan Russell

About Ryan Russell

Ryan Russell is a quality assurance manager at BigFix Inc., a configuration management company. He moderated the vuln-dev mailing list for three years under the alias "Blue Boar." He was the lead author of Hack-Proofing Your Network, 2nd Ed., and the technical editor of the Stealing the Network book series.
View all posts by Ryan Russell →

WinDeals

WinDeals offers subscribers regular discounts — of up to 50 percent off — on software and technology products. Read moreยป

View current deals
Top-scoring articles in the past 12 months
  • Leaving long cookie trails throughout the Web 5.00
  • Windows-like security for Android devices 5.00
  • Win7′s no-reformat, nondestructive reinstall 4.56
  • LizaMoon infection: a blow-by-blow account 4.46
  • RPV: Win7′s least-known data-protection system 4.35
  • Recovery: the last step in total data security 4.31
  • The sorry tale of the (un)Secure Sockets Layer 4.30
  • Time for a .NET update we can’t ignore 4.30
  • Getting the most from Windows Search — Part 1 4.25
  • Revising printing habits saves money and trees 4.25
  • Upgrades end in erratic, partial hangs 4.25
  • Get wired performance from your Wi-Fi network 4.24
  • Caution: Bumps in the road to IPv6 4.23
  • Patch Watch adds problem-patch update chart 4.23
  • ZeuS Trojan reinvents itself as bots rock on 4.22
  • Pros and cons of a ‘keyfile’ password 4.21
  • April brings showers of browser patches 4.20
  • Readers comment on the LizaMoon infection story 4.20
  • Office 2007 gets its final service pack 4.19
  • Putting Registry-/system-cleanup apps to the test 4.19
  • The advanced system-recover toolkit 4.18
  • One year and 99 security bulletins later 4.18
  • Don’t pay for software you don’t need — Part 3 4.17
  • What to do when Windows refuses to boot 4.17
  • Make the most of Windows 7′s Libraries 4.16
  • Keeping you up to date: say no to .NET — again 4.16
  • Internet Explorer gets another round of patches 4.15
  • Vacation’s over; it’s a big round of patches 4.15
  • Big-time Wi-Fi security for the small office 4.14
  • Office File Validation patch leads to problems 4.14
Connect with us Follow us on Twitter Connect with us on Facebook View our RSS Feeds
  • Home|
  • Newsletter|
  • About Windows Secrets|
  • Advertise with us|
  • Unsubscribe|
  • Sitemap|
  • Affiliates|
Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, WinFind, Windows Gizmos, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of iNET Interactive. All other marks are the trademarks or service marks of their respective owners.
iNET Interactive Copyright © 2011 iNET Interactive.
All rights reserved.
Terms of Use  |  Privacy Policy
Internet Services
  • Web Hosting Talk
  • HostingCon
  • Hosting Catalog
  • Host Voice
Web Development
  • Hot Scripts
  • DB Forums
Digital Marketing
  • ABestWeb
  • Search Marketing Standard
  • PayPerClickUniverse
  • SEMCompare
Consumer Tech
  • Windows Secrets
  • Overclockers
  • Mac Forums

Learn more about
advertising opportunities across the iNET Interactive Network.

LiquidWeb